Even after achieving an Authority to Operate (ATO), systems begin to drift from their approved security baseline almost immediately. Configuration changes, patching, and operational demands introduce inconsistencies that are difficult to track and even harder to correct using manual processes.
This session focuses on how to combat compliance drift by automating continuous enforcement of security controls using off-the-shelf tools like Ansible and the Ansible Lockdown project. George Nalen will demonstrate how to implement compliance as code, continuously validate system configurations, and remediate drift in real time.
Attendees will learn practical approaches to maintaining alignment with STIGs and security baselines, reducing audit friction, and supporting ongoing authorization efforts in Zero Trust environments.